This is your China Hack Report: Daily US Tech Defense podcast.

Hey listeners, Ting here, your go-to gal for all things China cyber chaos and hacker hijinks. Buckle up, because in the last 24 hours leading into this wild March 9th evening, China-linked cyber ops have been stealthily slicing into US tech and defense like a ninja in the night—especially with the Iran fireworks exploding since late February. No massive breaches dropped today, but the Volt Typhoon and Salt Typhoon crews, those sneaky Chinese state-sponsored phantoms, are still lurking deep in US critical infrastructure, per Politico’s weekly cybersecurity rundown. They’re the ghosts who compromised everything from power grids to water systems last year, and Trump’s new “America First Cyber Strategy” hilariously skips naming them outright—Mark Montgomery from the Foundation for Defense of Democracies called it an “absolute missed opportunity.”

But hold onto your firewalls: while Iran’s MuddyWater—wait, that’s their puppet, not Beijing’s direct play—is slamming US banks, airports like that one in the States, and nonprofits with fresh Dindoor backdoor malware, as Broadcom’s Symantec Threat Hunter Team just exposed. Dindoor? It’s a slick Deno-based beast for JavaScript execution, planted as early as February 7th on a US software firm servicing defense and aerospace—think Israeli ops too. They tried slurping data via RClone to Wasabi cloud buckets. Brigid O’Gorman from Symantec says these backdoors pre-positioned hackers for wartime punches amid the US-Israel strikes on Tehran that killed Ayatollah Ali Khamenei.

Sectors under fire? Financials are sweating a repeat of Operation Ababil DDoS nightmares, Flashpoint warns, while tech-defense hybrids and aviation get Python backdoors too. No emergency patches hit CISA feeds today, but they’re screaming for multi-factor auth everywhere, network segmentation, and hunting for Deno anomalies—Jermaine Roebuck just bounced from CISA, leaving the team lean amid shutdown drama.

China’s not firing the big guns yet; they’re playing 4D chess, warning Uncle Sam off Iran via state media while their APT41 offshoot, Silver Dragon, expands playbooks with Google Drive C2 against governments, Check Point reports. Witty move: Trump’s cyber chief Sean Cairncross is yakking “America First” at the Billington Summit tonight, but without calling out Beijing? Come on.

Defensive drill, listeners: Patch Windows Terminal pronto—Microsoft’s ClickFix scam delivers Lumma Stealer via social engineering. Hunt IOCs like unusual Deno runtime, RClone exfil, and Starlink pivots (Iran’s copying that trick). CISA says isolate, report via their portal, and drill incident response. Stay frosty—China’s watching.

Thanks for tuning in, listeners—subscribe for daily drops! This has been a Quiet Please production, for more check out quietplease.ai.

For more http://www.quietplease.ai

Get the best deals https://amzn.to/3ODvOta

This content was created in partnership and with the help of Artificial Intelligence AI